CVE-2024-8407 | alwindoss akademy up to 35caccea888ed63d5489e211c99edff1f62efdba handlers.go emailAddress cross site scripting

A vulnerability was found in alwindoss akademy up to 35caccea888ed63d5489e211c99edff1f62efdba. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file cmd/akademy/handler/handlers.go. The manipulation of the argument emailAddress leads to cross site scripting.

This vulnerability is known as CVE-2024-8407. The attack can be launched remotely. Furthermore, there is an exploit available.

This product does not use versioning. This is why information about affected and unaffected releases are unavailable.

CVE-2024-8407 | alwindoss akademy up to 35caccea888ed63d5489e211c99edff1f62efdba handlers.go emailAddress cross site scripting

Related Posts

CVE-2024-37631 | TOTOLINK A3700R 9.1.2u.6165_20211012 UploadCustomModule File stack-based overflow

CVE-2024-34010 | Acronis Cyber Protect Cloud Agent prior 37758 unquoted search path

CVE-2024-34539 | TerraMaster TOS up to 5.1 Mail Server/Web Server hard-coded credentials

CVE-2024-4181 | run-llama llama_index up to 0.10.12 RunGptLLM code injection